Indian cyber company has issued a high-risk warning for Google Chrome customers within the nation, saying that customers should replace their Chrome browser instantly. According to the Computer Emergency Response Team in India (CERT-In), a number of vulnerabilities have been reported in Google Chrome which might permit an attacker to execute arbitrary code, bypass safety restrictions or trigger a denial-of-service situation on the focused system.
“Multiple vulnerabilities exist in Google Chrome due to Heap buffer overflow error in WebP; Inappropriate implementation in Custom Tabs, Prompts, Input, Intents, Picture in Picture and Interstitials; Insufficient policy enforcement in Downloads and Autofill,” CERT-In mentioned in a report.
The company additionally mentioned that cyber attackers might exploit these vulnerabilities by persuading a sufferer to go to a specifically crafted web site. Successful exploitation of those vulnerabilities might permit an attacker to execute arbitrary code, bypass safety restrictions, or trigger a denial-of-service situation on the focused system.
Here’s The List of Affected Chrome Software
– Google Chrome (Extended Stable Channel) variations previous to 116.0.5845.188 (for Mac and Linux)
– Google Chrome (Extended Stable Channel) variations previous to 116.0.5845.187 (for Windows)
– Google Chrome for Desktop variations previous to 117.0.5938.62 (for Mac and Linux)
– Google Chrome for Desktop variations previous to 117.0.5938.62/.63 (for Windows)
“The vulnerability under CVE-2023-4863 is being exploited in the wild. Users are advised to patch the vulnerable devices immediately,” the company mentioned. For the affected software program, customers are suggested to replace their Chrome browser instantly.
According to CERT-In, Google has already launched the replace and safety repair containing patches and options for these safety points.
“The Stable and Extended stable channels has been updated to 116.0.5845.187 for Mac and Linux and 116.0.5845.187/.188 for Windows, which will roll out over the coming days/weeks. A full list of changes in this build is available in the log.
The Extended Stable channel has been updated to 116.0.5845.188 for Windows and 116.0.5845.187 for Mac, which will roll out over the coming days/weeks,” Google wrote in a blopost.
Source web site: www.news18.com